FiltersDone

Question type

Essay

Multiple Choice

Short Answer

True False

Matching

Exam 7: Security Technology: Intrusion Detection and Prevention Systems, and Other Security Tools

Show Answer

Share

---

All types

Filters

Study Flashcards

Question 61

Short Answer

Review LaterAdd Note

Review Later

To prevent problem behaviors by increasing the perceived risk of discovery and punishment for those who would attack or otherwise abuse the system

Correct Answer

Answered by ExamLex AI

To prevent problem behaviors by increasi...

View Answer

Show Answer

Question 62

True/False

Review LaterAdd Note

Review Later

Once the OS is known, all of the vulnerabilities to which a system is susceptible can easily be determined.

A) True
B) False

Correct Answer

verified

Show Answer

Question 63

Multiple Choice

Review LaterAdd Note

Using __________, the system reviews the log files generated by servers, network devices, and even other IDPSs.

An IDPS can be configured to dial a phone number and produce an alphanumeric page or other type of signal or message.

An HIDPS functions on the host system, where encrypted traffic will have been decrypted and is available for processing.

A false positive is the failure of an IDPS system to react to an actual attack event.

__________ are decoy systems designed to lure potential attackers away from critical systems.

Fingerprinting is the organized research of the Internet addresses owned or controlled by a target organization. _________________________

The integrity value, which is based upon fuzzy logic, helps an administrator determine how likely it is that an IDPS alert or alarm indicates an actual attack in progress. _________________________

To assist in footprint intelligence collection, attackers may use an enhanced Web scanner that, among other things, can scan entire Web sites for valuable pieces of information, such as server names and e-mail addresses.

A(n) __________ IDPS is focused on protecting network information assets.

A passive vulnerability scanner is one that initiates traffic on the network in order to determine security holes.

The ____________________ port is also known as a switched port analysis (SPAN) port or mirror port.

A fully distributed IDPS control strategy is an IDPS implementation approach in which all control functions are applied at the physical location of each IDPS component.

A padded cell is a hardened honeynet. _________________________

When a collection of honeypots connects several honeypot systems on a subnet, it may be called a(n) honeynet. _________________________

HIDPSs are also known as system ____________________ verifiers.

The use of switched network protocols does not affect an HIDPS.

NIDPSs are not usually susceptible to direct attack and may not be detectable by attackers.

A ____________________ vulnerability scanner listens in on the network and identifies vulnerable versions of both server and client software.